$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ef99f39-5c5c-4bb6-9e15-9baa9a993e2c.roa File: 0ef99f39-5c5c-4bb6-9e15-9baa9a993e2c.roa (raw, json) Hash identifier: 586MlU1NBWDp2wxmkJSAznllMQaaoROF7mAW/12ouxc= Subject key identifier: 3B:27:4B:E0:E7:59:03:F6:21:D2:31:78:EE:AD:3F:EC:F4:F6:E0:52 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1185CE067C5BB26D6A27DE981D18B6547246AD0B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ef99f39-5c5c-4bb6-9e15-9baa9a993e2c.roa Signing time: Mon 08 Sep 2025 15:50:24 +0000 ROA not before: Mon 08 Sep 2025 15:50:24 +0000 ROA not after: Mon 13 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 15 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:85:ce:06:7c:5b:b2:6d:6a:27:de:98:1d:18:b6:54:72:46:ad:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 8 15:50:24 2025 GMT Not After : Oct 13 23:59:59 2025 GMT Subject: serialNumber=65d3dd0daed17efb280773817c4cad29486c66cde7d0790fdbed512ae4da3f30, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:08:13:6d:1c:4f:0a:f3:89:99:47:07:ef:7b: d2:8b:4f:0b:c5:c8:62:4f:78:db:1d:35:35:c6:db: 0e:bc:7a:60:1b:a5:f4:a5:f3:c5:bb:7b:eb:f4:0f: da:5f:36:a9:2c:e6:a1:4c:9e:9a:0b:61:bc:40:19: a9:0c:ff:58:6d:93:df:03:0d:39:1f:d5:2d:98:43: a3:0f:d1:cd:dc:65:91:a8:d1:8b:05:ee:e8:a8:25: 6a:df:88:10:e6:be:66:3b:63:7e:7c:0c:86:54:e0: 57:e3:18:82:4d:33:41:c7:1c:d4:48:55:15:30:0b: 5f:91:06:f8:de:28:7e:99:4d:e1:0c:00:5e:9f:0f: 20:7e:3a:96:12:de:b8:a0:a4:6f:55:99:9e:e4:2d: 12:a0:6d:87:20:e3:12:c9:6c:86:d3:ca:54:1a:b1: a2:1c:62:92:be:e9:53:ed:02:f8:f7:3c:42:42:81: 68:10:3c:43:c2:82:15:0d:3c:8b:9c:7d:97:16:a4: b5:ec:6b:6d:c8:57:af:0f:06:71:39:5e:f9:24:8f: 73:b1:bb:59:53:20:ee:75:5b:45:0e:59:c8:eb:c0: 8e:37:f4:b8:96:df:6f:27:f2:34:0a:9e:33:9e:68: d3:b7:86:10:07:bb:e4:35:7e:cf:8c:70:c7:6c:3e: 37:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:27:4B:E0:E7:59:03:F6:21:D2:31:78:EE:AD:3F:EC:F4:F6:E0:52 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ef99f39-5c5c-4bb6-9e15-9baa9a993e2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.154.0/24 Signature Algorithm: sha256WithRSAEncryption 92:55:64:42:ea:27:84:97:aa:7e:fd:21:0c:0f:7e:54:74:44: 95:a7:86:d9:45:6e:26:da:c2:99:66:eb:3f:44:5f:b8:6e:95: 9a:73:63:41:be:1f:74:1a:1c:cd:61:06:53:70:b3:67:af:1d: 16:e4:ee:e8:3e:a2:80:24:65:ec:14:b9:07:ab:32:b2:9b:e1: 05:05:e3:4d:66:77:fb:eb:dc:6d:5b:b0:68:f7:8f:5a:25:e6: 70:58:86:c5:7d:e4:9c:46:7b:1b:fe:32:76:e7:f4:61:80:36: 49:48:b3:f1:9a:61:1a:fe:43:bc:39:b6:45:ce:b9:82:90:1f: 0c:4e:77:21:a9:e2:e1:99:78:32:55:e3:ca:26:f4:58:e7:1e: 61:ca:d5:f2:9a:0f:c2:9a:68:9b:9d:23:4e:72:15:4e:0a:44: 68:d6:20:4a:95:2b:82:9c:e8:91:56:52:d5:7a:0c:3d:e0:3b: c0:22:e4:f5:8f:81:50:1a:c9:ec:e6:3d:35:84:4b:21:b9:ad: d2:29:95:93:78:c6:50:be:b0:35:d4:81:27:eb:27:cf:1d:5e: 3f:bf:ca:b8:90:79:f4:1b:34:ee:ae:de:39:60:eb:d3:de:ee: e2:29:0c:bf:c5:61:d8:0d:e7:04:c2:65:9d:06:7c:7b:7f:2a: 44:86:8d:09 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEYXOBnxbsm1qJ96YHRi2VHJGrQswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA4MTU1MDI0WhcNMjUxMDEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NWQzZGQwZGFlZDE3ZWZiMjgwNzczODE3YzRjYWQyOTQ4 NmM2NmNkZTdkMDc5MGZkYmVkNTEyYWU0ZGEzZjMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD3CBNtHE8K84mZRwfve9KLTwvFyGJPeNsdNTXG2w68emAb pfSl88W7e+v0D9pfNqks5qFMnpoLYbxAGakM/1htk98DDTkf1S2YQ6MP0c3cZZGo 0YsF7uioJWrfiBDmvmY7Y358DIZU4FfjGIJNM0HHHNRIVRUwC1+RBvjeKH6ZTeEM AF6fDyB+OpYS3rigpG9VmZ7kLRKgbYcg4xLJbIbTylQasaIcYpK+6VPtAvj3PEJC gWgQPEPCghUNPIucfZcWpLXsa23IV68PBnE5Xvkkj3Oxu1lTIO51W0UOWcjrwI43 9LiW328n8jQKnjOeaNO3hhAHu+Q1fs+McMdsPjcTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOydL4OdZA/Yh0jF47q0/7PT24FIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBlZjk5ZjM5LTVjNWMtNGJiNi05ZTE1LTliYWE5YTk5M2UyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTZowDQYJKoZIhvcNAQELBQADggEBAJJVZELqJ4SXqn79IQwPflR0RJWn htlFbibawplm6z9EX7hulZpzY0G+H3QaHM1hBlNws2evHRbk7ug+ooAkZewUuQer MrKb4QUF401md/vr3G1bsGj3j1ol5nBYhsV95JxGexv+Mnbn9GGANklIs/GaYRr+ Q7w5tkXOuYKQHwxOdyGp4uGZeDJV48om9FjnHmHK1fKaD8KaaJudI05yFU4KRGjW IEqVK4Kc6JFWUtV6DD3gO8Ai5PWPgVAayezmPTWESyG5rdIplZN4xlC+sDXUgSfr J88dXj+/yriQefQbNO6u3jlg69Pe7uIpDL/FYdgN5wTCZZ0GfHt/KkSGjQk= -----END CERTIFICATE-----Generated at Sun Sep 14 11:51:48 2025 by rpki-client